Re: [squid-users] Squid and LDAP (AD) Authentication

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Tue, 5 Aug 2003 00:32:15 +0200

On Monday 04 August 2003 22.23, JOHNSON DAVID R wrote:
> Does anyone know or have the format of the file used to search and
> entire ldap store?
>
> squid_ldap_auth -f [file]

It is not a file, it is a standard LDAP search filter on the same
format as used by ldapsearch etc but with the login name to search
for replaced by %s.

The details of this filter depends on how you want to search for the
user (i.e. the structure of your user objects, specifically which
attribute is used for the login name).

Typical examples are

  "(&(uid=%s)(objectClass=inetOrgPerson))"
  "(&(cn=%s)(objectClass=inetOrgPerson))"
  "(&(userPrincipalName=%s)(objectClass=Person))"

But many other possibilities exists.

For more details see the squid_ldap_auth manaul and RFC2254 or your
favorite LDAP guide.

Regards
Henrik

-- 
Donations welcome if you consider my Free Squid support helpful.
https://www.paypal.com/xclick/business=hno%40squid-cache.org
If you need commercial Squid support or cost effective Squid or
firewall appliances please refer to MARA Systems AB, Sweden
http://www.marasystems.com/, info@marasystems.com
Received on Mon Aug 04 2003 - 16:33:04 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:18:35 MST